Neto Gregório Password Generator
Generate cryptographically strong random passwords with full control over length and character classes.
Generate a strong random password right in your browser. The randomness comes from WebCrypto (crypto.getRandomValues), so passwords are cryptographically suitable — not the weak Math.random() most generators use. Nothing is sent to a server.
Generate a strong password
What makes a password strong?
Two things: length and unpredictability. A 16-character random password drawn from a large alphabet has more entropy than a 30-character predictable phrase, and brute-forcing it is impractical with current hardware. The strength meter in this tool estimates entropy in bits and grades the result accordingly.
Tips
- Pick at least 16 characters. The default is exactly that.
- Enable all four character classes when the site allows symbols. Each class roughly doubles the search space.
- Use a password manager — typing a 20-character random string by hand once a day is fine, doing it twenty times a day isn't.
- Don't reuse passwords across sites. A single breach turns into a chain reaction otherwise.
About the lookalike-character option
Some characters are easy to mix up when reading off a screen or writing on paper: lowercase L versus the digit 1, capital O versus zero, and so on. Enable that option when you'll be typing the password by hand or sharing it verbally. Skip it when you're storing it in a password manager — fewer characters means slightly less entropy for the same length.